Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/AYPUQUzFAMJeRaQB4xlGtoiOvuQ.roa
File: AYPUQUzFAMJeRaQB4xlGtoiOvuQ.roa (raw, json)
Hash identifier: aXfAW9iCVQbsOi/XZTv02Jmkjod7IYb/7+FpFvBo4EE=
Subject key identifier: 01:83:D4:41:4C:C5:00:C2:5E:45:A4:01:E3:19:46:B6:88:8E:BE:E4
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 018FE6C6EDD77CEFB835CE8DA203953C7B86
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/AYPUQUzFAMJeRaQB4xlGtoiOvuQ.roa
Signing time: Wed 05 Jun 2024 05:02:27 +0000
ROA not before: Wed 05 Jun 2024 05:02:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 88.80.134.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 18:32:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e6:c6:ed:d7:7c:ef:b8:35:ce:8d:a2:03:95:3c:7b:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Jun 5 05:02:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0183d4414cc500c25e45a401e31946b6888ebee4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:c7:53:7e:69:a1:4b:50:bb:14:9a:32:fc:4f:
6b:e7:82:83:bd:b1:49:07:91:21:30:53:1c:b6:67:
14:65:41:db:a0:51:ca:6b:14:95:36:73:b9:3f:cb:
3b:41:ed:0b:fc:47:93:cc:49:7e:32:c1:79:07:89:
4d:68:01:19:73:8a:15:99:84:89:45:fe:5f:d3:26:
63:0b:19:b0:2a:84:ce:de:ad:8e:64:51:dc:55:d3:
cc:e1:06:f5:19:5b:7c:2e:95:8c:04:46:63:9c:e6:
16:34:7a:e4:88:d0:7d:f2:f8:05:d7:0a:b2:11:9e:
25:1f:c6:e4:47:94:79:c6:2d:e5:5c:30:c4:c6:2a:
99:20:5e:fe:e6:98:33:ac:1e:e0:01:48:48:f8:f7:
ac:47:ea:27:b3:26:19:5f:18:08:5a:00:d7:94:cc:
cc:bd:cc:c8:5e:74:8b:98:a1:00:9c:89:56:7a:b5:
10:46:a9:73:80:c3:d1:06:6b:17:4a:13:e4:ae:41:
fe:4d:10:3c:1b:46:f6:e8:1c:e9:18:31:c5:30:eb:
ff:3b:8a:0f:43:5d:93:d0:a5:13:56:e5:37:f4:1f:
d0:cd:1c:0f:ad:a7:c3:0c:6d:16:a2:45:1f:9d:07:
33:19:7b:91:b4:d3:aa:54:18:88:30:b3:32:85:de:
75:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:83:D4:41:4C:C5:00:C2:5E:45:A4:01:E3:19:46:B6:88:8E:BE:E4
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/AYPUQUzFAMJeRaQB4xlGtoiOvuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.80.134.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:96:d4:0e:dd:04:ce:4d:d8:ce:dc:5a:67:a1:b2:b8:57:8f:
26:53:4c:ec:84:07:f7:3d:0e:07:7d:ba:e1:08:5a:ac:7f:2f:
24:6b:29:a9:45:e3:7c:75:c2:2d:f0:29:2a:09:1a:a5:c9:6a:
3a:db:d9:15:d2:fd:74:80:94:e1:76:cf:c8:b5:82:7b:77:4a:
17:5b:70:f7:41:57:17:19:11:36:76:53:d0:b5:4a:36:4a:ff:
e8:33:e7:59:f2:8b:66:08:e7:a0:74:49:6d:c3:43:af:10:7d:
74:ea:ed:19:a2:f9:f4:d1:0d:3f:24:4b:6f:2d:8a:a0:6b:1c:
a3:d7:0c:7a:33:aa:26:02:2c:b5:e1:17:f5:f3:46:2a:23:e5:
fc:ac:26:47:e7:90:90:60:63:05:cf:86:8d:14:12:40:e4:9d:
d2:3a:41:7f:bf:38:f6:b8:61:40:4e:7c:8e:de:e0:81:06:ae:
6c:34:fb:88:7d:ce:4e:2f:b9:ef:e8:56:ac:c0:af:6c:8a:20:
50:9e:aa:ad:28:8b:93:bc:49:47:4c:88:cb:5e:1e:1a:b5:f8:
df:7c:96:50:40:b4:46:ce:c5:99:ba:03:35:5b:0f:72:a4:a3:
9f:48:3c:fc:6d:b0:51:29:74:5b:f0:f7:64:2c:40:e3:a9:0a:
46:f0:03:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:13 2024 by rpki-client on console-fra.rpki-client.org